Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json)
Hash identifier: 4VDciWFqyzKU23XnkvJeBJVqVBLeAnL3JKyHfTXqdYc=
Subject key identifier: BC:04:CA:10:A8:13:4B:C3:5E:2F:C7:31:85:45:6F:D0:8F:BC:9F:97
Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Certificate serial: 019EB8458C52C5D35EC2E4CC666CF069D161
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
Manifest number: 045C
Signing time: Thu 11 Jun 2026 20:00:26 +0000
Manifest this update: Thu 11 Jun 2026 20:00:26 +0000
Manifest next update: Fri 12 Jun 2026 20:00:26 +0000
Files and hashes: 1: DV_1PU5sghttOAyD5Fk0auja6M4.roa (hash: vyYX2XFHKs4PfXvL2MDa+XaKNUQzIY/+9Y9TmVp9CiU=)
2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: WtAdSn0BXil5u1Zj2uf2XAsGRdPDom15VZ/Q1ZxerXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:45:8c:52:c5:d3:5e:c2:e4:cc:66:6c:f0:69:d1:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Validity
Not Before: Jun 11 20:00:26 2026 GMT
Not After : Jun 12 20:00:26 2026 GMT
Subject: CN=bc04ca10a8134bc35e2fc73185456fd08fbc9f97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3c:d8:03:ca:1d:68:cf:68:a8:12:4a:6c:6c:
69:60:95:d3:6d:0c:de:9c:c4:2a:30:0a:13:1b:55:
a9:75:21:e5:38:e6:6d:e6:37:b3:42:21:37:9f:cf:
f9:32:50:fd:c3:2f:3a:ca:20:42:6a:4c:9e:f8:ae:
28:a6:fc:89:e3:35:34:d1:27:9f:4f:7b:73:b4:e2:
4c:3d:5a:35:02:96:e5:ed:52:ef:0a:12:b7:03:ee:
59:5e:a6:9f:ec:29:92:d6:2e:d3:95:1f:a0:91:1b:
a0:e7:e6:13:6d:14:7d:bd:99:36:af:55:0e:16:44:
c5:6b:a5:69:a3:b1:0b:c4:2a:b5:72:0b:99:dd:fa:
af:63:ae:68:71:d7:50:da:84:83:02:11:64:5b:0e:
e1:9a:33:87:10:87:e8:d9:47:12:46:bc:2a:8a:27:
d1:f3:a1:e1:75:e5:d9:c9:0b:cd:72:49:68:8f:cd:
91:7e:27:21:f7:6b:9e:ea:ce:c2:b3:5f:38:d5:6d:
e3:a5:26:44:91:19:b6:e7:99:e2:00:ee:95:19:7f:
3f:32:21:c0:20:1f:03:12:11:98:c1:cf:52:8c:cb:
ce:f5:5e:08:1b:e6:60:7d:6e:51:e4:d4:52:a1:0c:
1e:41:9b:4b:55:5d:ee:dc:e5:16:8e:08:45:f3:80:
dd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:04:CA:10:A8:13:4B:C3:5E:2F:C7:31:85:45:6F:D0:8F:BC:9F:97
X509v3 Authority Key Identifier:
keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:50:b4:0f:28:83:9c:0a:81:74:eb:a6:a4:4d:a9:37:20:02:
28:38:b6:08:d5:49:a6:cf:b4:f5:8d:2e:c3:2b:50:07:5e:3d:
b5:a8:c4:15:58:41:47:ee:b2:d6:33:5d:12:d6:b4:8b:c6:f8:
d3:ac:b7:2d:47:51:64:24:dd:2e:2b:f4:6b:85:ce:16:29:16:
9d:2b:c1:23:d6:4b:27:1e:ca:03:6d:8d:5c:64:b7:1b:07:ca:
dd:19:63:b2:fd:62:0b:86:b6:45:62:89:bb:7f:0c:44:4f:75:
b9:2a:3d:2d:13:12:25:2f:77:f0:94:5e:29:5c:c7:a6:ce:77:
fd:44:0a:ff:59:92:69:d4:15:2e:bb:c2:e5:2c:88:aa:c9:e3:
e8:5a:6c:f9:6f:2e:07:ee:a0:c9:09:58:25:8c:df:66:f1:12:
a1:97:57:a5:42:f0:1a:a0:7e:68:ec:9f:ac:75:df:26:19:4f:
4b:6a:00:b0:55:96:c2:2c:b7:c2:a0:10:47:45:17:ad:d6:5e:
be:ce:9a:c1:b7:6a:b2:52:50:db:e6:76:ba:87:68:f1:91:f0:
d6:03:f5:04:d1:2a:ff:c3:c4:e0:28:07:82:ef:64:46:4e:23:
31:3c:50:ae:12:82:c6:14:60:4f:b9:4e:f0:be:da:6d:4d:2f:
d0:0b:98:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:45:12 2026 by rpki-client